CVE-2021-36192
published 2021-11-03CVE-2021-36192: An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiManager 7.0.1 and below, 6.4.6 and below, 6.2.x, 6.0.x, 5.6.0 may…
low3.8CVSS 3.1
AVLACLPRLUINSCCLINAN
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiManager 7.0.1 and below, 6.4.6 and below, 6.2.x, 6.0.x, 5.6.0 may allow a FortiGate user to see scripts from other ADOMS.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortigate | — | — |
| fortinet | fortimanager | — | — |
| fortinet | fortimanager | 5.6.0 – 5.6.11 | — |
| fortinet | fortimanager | 6.0.0 – 6.0.11 | — |
| fortinet | fortimanager | 6.2.0 – 6.2.8 | — |
| fortinet | fortimanager | >= 6.4.0 < 6.4.6 | 6.4.6 |
| fortinet | fortimanager | >= 7.0.0 < 7.0.1 | 7.0.1 |
| fortinet | fortinet_fortimanager | — | — |